Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/750045187BD911EF928AA24DC4F9AE02.roa
File: 750045187BD911EF928AA24DC4F9AE02.roa (raw, json)
Hash identifier: dT0AnuBJQqREflJMDH+JWfvQ4YEb81E2H1lNafcgc50=
Subject key identifier: 7D:7F:2B:59:56:C6:EC:DF:EB:95:4D:55:FF:F2:A1:76:B3:96:0E:CC
Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Certificate serial: 349D
Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/750045187BD911EF928AA24DC4F9AE02.roa
Signing time: Thu 26 Sep 2024 07:32:17 +0000
ROA not before: Thu 26 Sep 2024 07:32:17 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45845
IP address blocks: 45.117.152.0/22 maxlen: 22
45.117.152.0/23 maxlen: 24
103.235.196.0/22 maxlen: 24
103.250.132.0/22 maxlen: 22
103.250.132.0/23 maxlen: 23
103.250.132.0/24 maxlen: 24
103.250.133.0/24 maxlen: 24
103.250.135.0/24 maxlen: 24
163.53.24.0/22 maxlen: 24
202.51.64.0/19 maxlen: 21
202.51.64.0/20 maxlen: 22
202.51.64.0/21 maxlen: 24
202.51.72.0/22 maxlen: 24
202.51.76.0/23 maxlen: 24
202.51.79.0/24 maxlen: 24
202.51.80.0/22 maxlen: 24
202.51.86.0/24 maxlen: 24
202.51.88.0/21 maxlen: 22
202.51.88.0/23 maxlen: 24
202.51.92.0/22 maxlen: 24
2405:6600::/32 maxlen: 32
2405:6600:201::/48 maxlen: 48
2405:6600:600::/48 maxlen: 48
2405:6600:701::/48 maxlen: 48
2405:6600:702::/48 maxlen: 48
2405:6600:703::/48 maxlen: 48
2405:6600:709::/48 maxlen: 48
2405:6600:c00::/48 maxlen: 48
2405:6600:c43::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 27 Sep 2024 05:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13469 (0x349d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Validity
Not Before: Sep 26 07:32:17 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66f50e01-61c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d2:06:07:d8:59:be:65:f2:62:9e:d0:18:b4:
d1:29:88:c8:ad:c3:f4:3a:7e:b0:0a:36:da:e3:d6:
05:f3:7d:b9:0d:f6:66:ae:bc:ff:fd:d6:4c:36:84:
c9:69:e7:1b:c2:43:28:71:3e:1f:8a:a2:ca:b3:f4:
fd:4f:bf:a9:e8:f0:75:1a:b2:01:4b:63:6e:3a:f9:
2c:27:d3:07:09:45:75:80:fc:5c:04:98:56:53:8d:
fa:03:b0:e8:39:40:df:4e:c8:c1:5b:09:59:8a:14:
d4:d9:43:e3:68:fe:78:4f:f8:89:f9:d1:0c:83:e4:
46:ac:27:f1:2a:44:a8:89:ea:e6:9c:d2:66:4a:69:
fd:66:3b:01:b2:61:9a:0b:22:fc:39:4e:07:2f:50:
41:19:7b:98:7d:28:d5:12:26:d4:e0:64:3e:77:e2:
d6:aa:00:40:05:bd:ea:2e:9d:64:dc:32:fd:45:af:
21:bd:5a:e9:b3:93:dc:fe:8f:99:9c:f8:f6:86:cc:
bf:ae:33:18:e0:9b:38:10:a6:8b:08:90:b2:49:b4:
0f:77:c5:da:5f:f6:51:e0:70:40:af:da:cf:ad:d2:
77:ff:8b:62:d8:0a:eb:87:4c:59:97:04:29:a5:ac:
8c:19:33:1e:bc:5b:39:50:9f:cb:c1:84:ae:ce:42:
00:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7F:2B:59:56:C6:EC:DF:EB:95:4D:55:FF:F2:A1:76:B3:96:0E:CC
X509v3 Authority Key Identifier:
keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/750045187BD911EF928AA24DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.117.152.0/22
103.235.196.0/22
103.250.132.0/22
163.53.24.0/22
202.51.64.0/19
IPv6:
2405:6600::/32
Signature Algorithm: sha256WithRSAEncryption
60:63:61:b5:a8:af:cb:ce:30:28:b7:0e:67:2e:16:11:df:ba:
a4:ac:1a:c7:1f:c5:63:84:78:af:3e:25:6a:68:c7:e4:16:1e:
0b:49:f7:b0:e0:40:f0:3f:bb:91:fc:94:dd:18:21:ad:ec:0e:
a9:a7:ae:8c:a1:ac:87:03:30:5c:9b:31:9d:48:46:47:c7:d2:
93:3f:29:0e:54:12:e8:95:f2:4b:7e:9f:70:56:a7:1e:8d:f8:
e1:0f:e7:0a:a9:ad:23:a8:31:dc:1b:1d:b3:20:3b:48:93:40:
6e:f7:8f:90:5e:58:59:85:53:f4:9d:a2:10:17:31:7d:27:c6:
1b:04:e0:19:10:f1:69:39:3f:bc:c7:35:c5:c0:c9:79:c6:e9:
58:55:28:7c:68:86:09:92:35:ec:f6:4f:ff:30:76:eb:0c:82:
9a:ae:d8:7e:1e:9e:f3:b4:ca:c0:86:a1:f6:00:4b:ac:5d:cd:
df:32:b6:12:9d:df:91:78:3b:b1:1f:f6:46:a7:27:13:cf:ce:
7f:6c:37:4a:95:60:ab:96:2b:c2:e0:a2:9b:a6:62:c0:06:18:
a2:1f:8e:69:49:82:4b:63:ba:41:1f:45:57:ce:23:77:8f:55:
d5:fa:6b:d8:2c:16:73:8a:f0:f6:cd:bd:4f:10:36:98:93:bf:
50:7f:1e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 09:13:59 2024 by rpki-client on console-ams.rpki-client.org